SSO Login via Okta and Middleware
This page details how to configure Okta to facilitate SSO with the Middleware.
Supported Features
Service Provider (SP)-Initiated Authentication (SSO) Flow - This authentication flow occurs when the user attempts to log in to the application from Middleware.
Identity Provider (IDP)-Initiated Authentication (SSO) Flow - This authentication flow occurs when the user attempts to log in to Middleware from Okta.
Prerequisites
In order to proceed with configuring login with SSO through Okta, you must:
- Okta Account: Have access to an Okta tenant.
- Okta Administrator Privileges: Be an Okta administrator to that tenant.
Adding Okta credentials to Middleware
You will need to provide your Okta credentials to Middleware and this is done on Middleware’s installation page.
Step 1: Navigate to the Installation Page in your Middleware account
1.1. Look for the Okta Integration card.
Step 2: Configure Okta Integration
2.1. Click on the Okta Integration card.
2.2. A form will appear where you need to enter the details for the protocol you are using (e.g. SAML or OIDC).
2.3. Fill in the required information and save.
Once the protocol details are saved, all users associated with your middleware account will be automatically assigned to this Okta integration.
Step 3: Login Using Okta
3.1. Navigate to the login page for your Middleware account.
3.2. Click on the Okta icon.
3.3. An email field will appear. Make sure to enter the same email address that you use for your Middleware account.
Step 4: Authenticate with Okta
4.1. After entering your email, you will be redirected to Okta for authentication.
4.2. Complete the login process using your Okta credentials.
OIDC Integration
Step 1: Access the Okta Dashboard
1.1. In your Okta Admin Dashboard, navigate to Applications from the main menu.
1.2. Select the Applications sub-menu.
Step 2: Add Middleware Application
2.1. Click on Browse App Catalog.
2.2. Search for the application named Middleware.
2.3. Once found, add this application to your Okta environment.
Step 3: Obtain Client ID and Okta Secret
3.1. After adding the application, go to the Sign On tab of the Middleware app.
3.2. Copy your Client ID and go back to your Middleware account's Okta Integration form.
3.3. Paste the Client ID into the first field in the form.
Step 4: Copy Okta Secret
4.1. In the Sign On tab, locate the Okta Secret.
4.2. Copy this secret and paste it into the second field in your Middleware application's Okta Integration form.
Step 5: Copy Issuer URL from Metadata
5.1. In the Sign On tab, find the link to your OpenID Provider Metadata.
5.2. Click on the link to open your metadata page.
5.3. From the metadata, copy the Issuer URL.
5.4. Paste the Issuer URL into the Issuer field in the same Okta Integration form in your Middleware app.
Step 6: Confirm Values
6.1. Ensure that all fields in the form are correctly filled.
Entering incorrect values for any of the fields (such as the Issuer URL) will prevent successful authentication.
Step 7: Complete OIDC Integration
7.1. After entering all required details (Client ID, Okta Secret, Issuer URL), save the configuration.
SAML Integration
Step 1: Access the Okta Dashboard
1.1. In your Okta Admin Dashboard, navigate to Applications from the main menu.
1.2. Select the Applications sub-menu.
Step 2: Add Middleware Application
2.1. Click on Browse App Catalog.
2.2. Search for the application named Middleware.
2.3. Once found, add this application to your Okta environment.
Step 3: Locate your Metadata URL
3.1. After adding the application, go to the Sign On tab of the Middleware application in Okta.
3.2. Locate and copy the Metadata URL.
Step 4: Enter Metadata URL in Middleware Application
4.1. Paste the Metadata URL into the relevant field in the Okta Integration form of your Middleware application.
Step 5: Confirm Values
5.1. Ensure that all fields in the form are correctly filled.
Entering incorrect values for any of the fields (such as the Metadata URL) will prevent successful authentication.
Step 6: Log in to Middleware
6.1. On the login page of your Middleware account, click the Okta icon.
6.2. Enter the same email you use in your Middleware app to authenticate via Okta.
Following SAML attributes are supported:
| Name | Value |
|---|---|
| user.email |
Service Provider-initiated SSO
1. Go to this URL: Middleware Login with Okta.
2. Use the third login option and enter your email address and click on “Submit”.
3. If you are prompted for your Okta username and password, enter them.
4. If the above credentials are valid, 3 above are valid, you will be redirected to Middleware and will be logged into Middleware’s account.
Next Steps
Need assistance or want to learn more about Middleware? Contact our support team in Slack.